(MS14-053) Vulnerability in .NET Framework Could Allow Denial of Service (2990931)
Publish date: 30 de octubre de 2014
Gravedad: High
Identificadores de CVE : CVE-2014-4072
Fecha recomendada: 30 de octubre de 2014
Descripción
This security update addresses a vulnerability found in Microsoft .NET Framework. Once exploited successfully, it can allow denial of service via specially crafted requests to an affected .NET-enabled website.
Revelación de la información
Trend Micro Deep Security shields networks through the following Deep Packet Inspection (DPI) rules. Trend Micro customers using OfficeScan with Intrusion Defense Firewall (IDF) plugin are also protected from attacks using these vulnerabilities.
Soluciones
Software y versión afectados
- Microsoft .NET Framework 1.1 Service Pack 1
- Microsoft .NET Framework 2.0 Service Pack 2
- Microsoft .NET Framework 4.5
- Microsoft .NET Framework 4.5.1
- Microsoft .NET Framework 4.5.2
- Microsoft .NET Framework 3.5
- Microsoft .NET Framework 3.0 Service Pack 2
- Microsoft .NET Framework 4
- Microsoft .NET Framework 3.5.1